From f5e6a69e1e4f90c0f3a46ac08ce17d3fa6f68c87 Mon Sep 17 00:00:00 2001
From: friedrich goerz <friedrich.goerz@netgo.de>
Date: Wed, 15 Feb 2023 21:31:09 +0100
Subject: [PATCH] DEV-878: added missing but needed/important seemingly

---
 templates/netpol_egress-pginstances2k8s.yaml | 25 ++++++++++++++++++++
 1 file changed, 25 insertions(+)
 create mode 100644 templates/netpol_egress-pginstances2k8s.yaml

diff --git a/templates/netpol_egress-pginstances2k8s.yaml b/templates/netpol_egress-pginstances2k8s.yaml
new file mode 100644
index 0000000..9899e3e
--- /dev/null
+++ b/templates/netpol_egress-pginstances2k8s.yaml
@@ -0,0 +1,25 @@
+apiVersion: networking.k8s.io/v1
+kind: NetworkPolicy
+metadata:
+  name: egress-pginstances2k8s
+# netpol needed due to https://issues.arxes-tolina.de/browse/DEV-745
+# allow connection against k8s-api server
+spec:
+  egress:
+  - ports:
+    - port: 443
+      protocol: TCP
+    - port: 6443
+      protocol: TCP
+    to:
+    - ipBlock:
+        cidr: 10.3.0.2/32
+    - ipBlock:
+        cidr: 10.3.0.5/32
+    - ipBlock:
+        cidr: 10.3.0.6/32
+  podSelector:
+    matchLabels:
+      cluster-name: postgres-cluster
+  policyTypes:
+  - Egress